{"id":31748,"date":"2025-12-18T00:23:14","date_gmt":"2025-12-18T00:23:14","guid":{"rendered":"http:\/\/localhost\/?p=31748"},"modified":"2025-12-18T00:23:14","modified_gmt":"2025-12-18T00:23:14","slug":"untrusted-pointer-dereference-in-camera","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=31748","title":{"rendered":"Untrusted Pointer Dereference in Camera_CVE-2025-47387"},"content":{"rendered":"

{“lastseen”:””,”description”:”Memory Corruption when processing IOCTLs for JPEG data without verification.”,”published”:”2025-12-18T05:29:13.939Z”,”modified”:”2025-12-18T05:29:13.939Z”,”type”:”cve”,”title”:”Untrusted Pointer Dereference in Camera”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/december-2025-bulletin.html”,”id”:”CVE-2025-47387″,”bulletinFamily”:””,”cwe”:[“CWE-822″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AQT1000\\nQualcomm, Inc. Snapdragon FastConnect 6200\\nQualcomm, Inc. Snapdragon FastConnect 6700\\nQualcomm, Inc. Snapdragon FastConnect 6800\\nQualcomm, Inc. Snapdragon FastConnect 6900\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm, Inc. Snapdragon QCA6391\\nQualcomm, Inc. Snapdragon QCA6420\\nQualcomm, Inc. Snapdragon QCA6430\\nQualcomm, Inc. Snapdragon QCM5430\\nQualcomm, Inc. Snapdragon QCM6490\\nQualcomm, Inc. Snapdragon QCS5430\\nQualcomm, Inc. Snapdragon QCS6490\\nQualcomm, Inc. Snapdragon Qualcomm Video Collaboration VC3 Platform\\nQualcomm, Inc. Snapdragon SC8180X+SDX55\\nQualcomm, Inc. Snapdragon SC8380XP\\nQualcomm, Inc. Snapdragon SM6250\\nQualcomm, Inc. Snapdragon Snapdragon 7c Compute Platform (SC7180-AC)\\nQualcomm, Inc. Snapdragon Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \\”Rennell Pro\\”\\nQualcomm, Inc. Snapdragon Snapdragon 7c+ Gen 3 Compute\\nQualcomm, Inc. Snapdragon Snapdragon 8c Compute Platform (SC8180X-AD) \\”Poipu Lite\\”\\nQualcomm, Inc. Snapdragon Snapdragon 8c Compute Platform (SC8180XP-AD) \\”Poipu Lite\\”\\nQualcomm, Inc. Snapdragon Snapdragon 8cx Compute Platform (SC8180X-AA, AB)\\nQualcomm, Inc. Snapdragon Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \\”Poipu Pro\\”\\nQualcomm, Inc. Snapdragon Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \\”Poipu Pro\\”\\nQualcomm, Inc. Snapdragon Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)\\nQualcomm, Inc. Snapdragon Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)\\nQualcomm, Inc. Snapdragon WCD9340\\nQualcomm, Inc. Snapdragon WCD9341\\nQualcomm, Inc. Snapdragon WCD9370\\nQualcomm, Inc. Snapdragon WCD9375\\nQualcomm, Inc. Snapdragon WCD9380\\nQualcomm, Inc. Snapdragon WCD9385\\nQualcomm, Inc. Snapdragon WSA8810\\nQualcomm, Inc. Snapdragon WSA8815\\nQualcomm, Inc. Snapdragon WSA8830\\nQualcomm, Inc. Snapdragon WSA8835\\nQualcomm, Inc. Snapdragon WSA8840\\nQualcomm, Inc. Snapdragon WSA8845\\nQualcomm, Inc. Snapdragon WSA8845H”,”sourceHref”:””,”cvss”:{“score”:7.8,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Snapdragon”,”version”:”AQT1000″,”vendor”:”Qualcomm, Inc.”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:””,”description”:”Memory Corruption when processing IOCTLs for JPEG data without verification.”,”published”:”2025-12-18T05:29:13.939Z”,”modified”:”2025-12-18T05:29:13.939Z”,”type”:”cve”,”title”:”Untrusted Pointer Dereference in Camera”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/december-2025-bulletin.html”,”id”:”CVE-2025-47387″,”bulletinFamily”:””,”cwe”:[“CWE-822″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AQT1000\\nQualcomm, Inc. Snapdragon FastConnect 6200\\nQualcomm, Inc. Snapdragon FastConnect 6700\\nQualcomm,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,28,12,15,13,7,11,5],"class_list":["post-31748","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-78","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\nUntrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=31748\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Untrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:””,”description”:”Memory Corruption when processing IOCTLs for JPEG data without verification.”,”published”:”2025-12-18T05:29:13.939Z”,”modified”:”2025-12-18T05:29:13.939Z”,”type”:”cve”,”title”:”Untrusted Pointer Dereference in Camera”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/december-2025-bulletin.html”,”id”:”CVE-2025-47387″,”bulletinFamily”:””,”cwe”:[“CWE-822″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AQT1000nQualcomm, Inc. Snapdragon FastConnect 6200nQualcomm, Inc. Snapdragon FastConnect 6700nQualcomm,...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=31748\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-12-18T00:23:14+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"Untrusted Pointer Dereference in Camera_CVE-2025-47387\",\"datePublished\":\"2025-12-18T00:23:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748\"},\"wordCount\":372,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"CVSS-7.8\",\"exploit\",\"HIGH\",\"news\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_cve\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=31748#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748\",\"name\":\"Untrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-12-18T00:23:14+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=31748\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=31748#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Untrusted Pointer Dereference in Camera_CVE-2025-47387\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Untrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=31748","og_locale":"en_US","og_type":"article","og_title":"Untrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem","og_description":"{“lastseen”:””,”description”:”Memory Corruption when processing IOCTLs for JPEG data without verification.”,”published”:”2025-12-18T05:29:13.939Z”,”modified”:”2025-12-18T05:29:13.939Z”,”type”:”cve”,”title”:”Untrusted Pointer Dereference in Camera”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/december-2025-bulletin.html”,”id”:”CVE-2025-47387″,”bulletinFamily”:””,”cwe”:[“CWE-822″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AQT1000nQualcomm, Inc. Snapdragon FastConnect 6200nQualcomm, Inc. Snapdragon FastConnect 6700nQualcomm,...","og_url":"https:\/\/zero.redgem.net\/?p=31748","og_site_name":"zero redgem","article_published_time":"2025-12-18T00:23:14+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=31748#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=31748"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"Untrusted Pointer Dereference in Camera_CVE-2025-47387","datePublished":"2025-12-18T00:23:14+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=31748"},"wordCount":372,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","CVSS-7.8","exploit","HIGH","news","Security","tapic","Vulnerability"],"articleSection":["category_cve"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=31748#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=31748","url":"https:\/\/zero.redgem.net\/?p=31748","name":"Untrusted Pointer Dereference in Camera_CVE-2025-47387 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-12-18T00:23:14+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=31748#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=31748"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=31748#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"Untrusted Pointer Dereference in Camera_CVE-2025-47387"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/31748","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=31748"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/31748\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=31748"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=31748"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=31748"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}